ISO 17799 is the most widely recognised security standard. It is based upon BS7799, which was last published in May 1999, an edition which itself included many enhancements and improvements on previous versions. The first version of ISO 17799 was published in December 2000.
ISO17799 is comprehensive in its coverage of security issues. It contains a substantial number of control requirements, some extremely complex. Compliance with ISO 17799, or indeed any detailed security standard, is therefore a far from trivial task, even for the most security conscious of organizations. Certification can be even more daunting.
It is recommended therefore that ISO 17799 is approached step by step. The best starting point is often an assessment of the current position, followed by identification of what changes are needed for ISO17799. From here, planning and implementation must be undertaken.
This web site is intended to assist in this process. The following pages will provide further information on the ISO 17799 standard, as well as suggesting a solution to help guide you to full compliance:
Hopefully, the above pages will prove to be an invaluable source of information. If, however, you need any further assistance or advice with respect to any aspect of ISO17799, please do not hesitate to contact us.
Or the ISO17799 standard itself
can be downloaded and bought from the
BSI Electronic Shop.
Links to risk and ISO 17799 related information on the Web.